Fakultas Teknologi Informasi

Balancing Cybersecurity Policies and Institutional Ethics: A Legal and Cultural Perspective on Higher Education Frameworks

Penulis
Dosen:
  1. SYARIF HIDAYATULLOH
Eksternal:
  1. Aedah binti Abd Rahman
Tanggal Terbit
15 Januari 2025
Kategori
Jurnal Internasional Bereputasi [Q3]
Penerbit
Revista de Gestão Social e Ambiental
Kota / Negara
florida / united states of america
Volume
vol. 19 No. 1
Halaman
1-18
ISSN
1981-982X
DOI
https://doi.org/10.24857/rgsa.v19n1-049
URL
https://rgsa.openaccesspublications.org/rgsa/article/view/10788
Abstrak
Objective: The objective of this study is to investigate the intersection of cybersecurity policies with legal and
cultural considerations within higher education institutions (HEIs), with the aim of addressing key challenges and
proposing a balanced framework that ensures institutional control while respecting ethical and cultural diversity.
Theoretical Framework: This research is grounded in theories of ethical governance, legal compliance, and
cultural sensitivity. Established frameworks such as ISO 27001 and NIST Cybersecurity Framework provide a
foundational basis but are examined critically for their limitations in addressing the unique needs of HEIs.
Method: The study employs a qualitative methodology, combining a systematic literature review and semistructured expert interviews. Data collection was conducted through a comprehensive review of academic and
institutional sources (2015–2024) and in-depth interviews with ten experts from the fields of cybersecurity, legal
studies, and higher education policy.
Results and Discussion: The results revealed that existing cybersecurity frameworks lack alignment with cultural
and ethical considerations, leading to resistance and limited effectiveness in HEIs. Key challenges include
insufficient stakeholder engagement, tensions between institutional control and individual rights, and inadequate
resources. The discussion contextualizes these findings within the theoretical framework, emphasizing the
importance of inclusive policy development and ethical audits. Limitations of the study include its focus on specific
institutional contexts, which may not fully generalize to other educational systems.
Research Implications: The research has practical and theoretical implications for the development of more
robust and inclusive cybersecurity policies. The findings provide actionable insights for improving stakeholder
engagement, balancing legal and ethical imperatives, and fostering cultural sensitivity. These implications are
particularly relevant for HEIs, policymakers, and cybersecurity professionals.
Originality/Value: This study contributes to the literature by highlighting the necessity of integrating cultural and
ethical dimensions into cybersecurity frameworks. Its innovative approach bridges gaps in existing models,
providing practical solutions for HEIs to create secure, equitable, and culturally responsive digital environments.